Code Execution Vulnerability in Java Interface on Apple Mac OS X
CVE-2007-3747

Currently unrated

Key Information:

Vendor: Apple
Status: Ichat
Vendor: CVE Published:; 3 August 2007

What is CVE-2007-3747?

The Java interface in Apple Mac OS X versions 10.3.9 and 10.4.10 lacks proper restrictions on object instantiation and operations, which may lead to remote attackers executing arbitrary code by utilizing specially crafted applets. This vulnerability highlights significant risks within the Mac OS X environment that require prompt attention to avoid potential exploitation.

References

http://www.vupen.com/english/advisories/2007/2732

vdb-entryx_refsource_VUPEN

http://lists.apple.com/archives/security-announce//2007/J...

vendor-advisoryx_refsource_APPLE

http://docs.info.apple.com/article.html?artnum=306172

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 3, 2007
Vulnerability Reserved
Jul 12, 2007